$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa File: E50D7EFABCF911EA83F88D29C4F9AE02.roa (raw, json) Hash identifier: YlmPzoS7Dx5rTAptJCAh2QRTFPYKvAj46pD32lpMAuo= Subject key identifier: C4:E0:91:60:5F:1B:0A:FC:B4:85:AC:00:5F:43:B2:C1:CA:8B:EE:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D3D0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:28:14 +0000 ROA not before: Thu 08 May 2025 16:08:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136697 IP address blocks: 103.104.52.0/22 maxlen: 24 103.148.180.0/23 maxlen: 24 103.154.38.0/23 maxlen: 24 103.157.240.0/23 maxlen: 24 2001:df5:3580::/48 maxlen: 48 2001:df7:80::/48 maxlen: 48 2404:e640::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54224 (0xd3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:08:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bd7d-a7ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:69:1d:14:c8:8a:ab:7e:a8:72:33:04:fb:2f: 61:af:a8:79:29:33:d0:f1:a2:66:6c:99:f8:f3:09: a7:97:4f:00:40:7b:ad:27:1b:0b:ce:5c:eb:2d:f0: dc:f1:d0:b2:03:4b:d2:ad:10:49:af:db:7d:61:b5: 00:91:82:82:e1:1b:09:b4:13:98:ec:f0:2d:e2:3a: 6a:32:a5:a8:67:7d:ef:5c:36:31:61:18:cd:5f:c0: 40:bd:9a:d0:7b:44:f9:13:19:1f:9e:95:b2:9d:a6: bf:34:29:16:3f:16:39:e3:73:5b:bd:4a:c8:87:71: 35:36:89:1d:1f:8b:20:3e:aa:33:3a:b5:32:c7:12: 14:96:83:a0:c8:5e:ff:93:91:2e:ab:4e:de:b5:97: 3d:ff:4a:e9:b0:1e:a6:a0:64:5c:a4:39:24:9c:af: 1a:ee:c2:d3:35:07:84:81:b2:43:ef:65:0f:d5:43: 21:94:58:d3:e1:77:b7:28:dd:00:01:49:82:ae:ba: 27:73:fc:96:8f:5d:f0:43:d7:20:b6:74:fc:bb:90: cd:f5:5a:60:2e:00:e5:b7:fb:06:b9:20:a1:34:c1: b8:86:4e:30:11:30:8c:2e:5b:e8:a4:1c:76:5a:91: 73:d5:ca:ce:ce:9c:ec:3d:bc:40:08:1e:29:11:86: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E0:91:60:5F:1B:0A:FC:B4:85:AC:00:5F:43:B2:C1:CA:8B:EE:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E50D7EFABCF911EA83F88D29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.52.0/22 103.148.180.0/23 103.154.38.0/23 103.157.240.0/23 IPv6: 2001:df5:3580::/48 2001:df7:80::/48 2404:e640::/32 Signature Algorithm: sha256WithRSAEncryption 51:42:69:b3:eb:61:42:ca:3c:bf:02:b6:b3:67:0a:2a:f0:04: cf:8c:d6:c3:f5:43:c7:4e:d6:b0:50:4c:f3:74:88:2e:11:8c: 4b:1e:27:59:ca:3d:d9:3a:79:b0:13:e9:63:7e:9a:c2:95:ac: d9:79:53:52:53:19:10:43:6e:0b:75:64:99:e8:7d:25:9b:fa: f1:23:b8:c9:e0:8f:dd:1d:2c:13:4f:ae:c6:33:28:88:ce:68: dd:1c:63:3e:68:d0:75:d4:d6:84:98:0d:10:ca:1f:56:f3:f3: 93:91:df:86:d1:0e:c6:f8:a3:ec:60:c5:83:10:d8:9f:80:d9: dc:6b:d0:5d:2e:59:84:00:89:46:32:e0:26:fe:38:e8:84:4e: 7f:c6:35:1a:97:80:5b:ff:bd:ae:71:2f:a0:bc:3d:a9:b5:d4: bd:c4:30:5f:d8:3b:3f:7e:75:d3:08:3c:90:41:f2:75:6f:fd: dc:c9:51:e2:cc:b2:4b:32:89:1e:84:73:94:31:1b:33:6e:7c: eb:bc:d0:5e:f2:88:21:2b:c1:d4:7c:4f:f9:5a:9d:00:7a:65: 3d:19:b5:93:75:9c:e4:f6:b6:2e:b6:30:f6:11:1a:11:3a:f8: 63:da:4f:56:12:39:e9:66:37:54:45:d2:40:62:8b:6d:21:b8: c9:d0:36:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIDANPQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDgwOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJkN2QtYTdlYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRpHRTIiqt+qHIzBPsvYa+oeSkz0PGiZmyZ+PMJp5dPAEB7rScbC85c6y3w 3PHQsgNL0q0QSa/bfWG1AJGCguEbCbQTmOzwLeI6ajKlqGd971w2MWEYzV/AQL2a 0HtE+RMZH56Vsp2mvzQpFj8WOeNzW71KyIdxNTaJHR+LID6qMzq1MscSFJaDoMhe /5ORLqtO3rWXPf9K6bAepqBkXKQ5JJyvGu7C0zUHhIGyQ+9lD9VDIZRY0+F3tyjd AAFJgq66J3P8lo9d8EPXILZ0/LuQzfVaYC4A5bf7BrkgoTTBuIZOMBEwjC5b6KQc dlqRc9XKzs6c7D28QAgeKRGGn4kCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTE4JFg XxsK/LSFrABfQ7LByovuRjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U1MEQ3RUZB QkNGOTExRUE4M0Y4OEQyOUM0RjlBRTAyLnJvYTBSBggrBgEFBQcBBwEB/wRDMEEw HgQCAAEwGAMEAmdoNAMEAWeUtAMEAWeaJgMEAWed8DAfBAIAAjAZAwcAIAEN9TWA AwcAIAEN9wCAAwUAJATmQDANBgkqhkiG9w0BAQsFAAOCAQEAUUJps+thQso8vwK2 s2cKKvAEz4zWw/VDx07WsFBM83SILhGMSx4nWco92Tp5sBPpY36awpWs2XlTUlMZ EENuC3Vkmeh9JZv68SO4yeCP3R0sE0+uxjMoiM5o3RxjPmjQddTWhJgNEMofVvPz k5HfhtEOxvij7GDFgxDYn4DZ3GvQXS5ZhACJRjLgJv446IROf8Y1GpeAW/+9rnEv oLw9qbXUvcQwX9g7P3510wg8kEHydW/93MlR4syySzKJHoRzlDEbM25867zQXvKI ISvB1HxP+VqdAHplPRm1k3Wc5Pa2LrYw9hEaETr4Y9pPVhI56WY3VEXSQGKLbSG4 ydA27A== -----END CERTIFICATE-----Generated at Mon Mar 2 15:35:34 2026 by rpki-client